Software Update: Wireshark 1.2.9

Version 1.2.9 of Wireshark was released on Wednesday. Wireshark is an open source protocol analyzer and packet sniffer, which can analyze various network protocols and data packets on the network. Also, the program can use previously saved data traffic as input. Since version 1.2.0, there have been separate downloads for 64-bit versions of Windows, support for the c-ares resolver library has been added, and support has been improved for Mac OS X. In this update, the developers have made some bug fixes and some of the supported protocols updated. The full release notes can be found below.

The following vulnerabilities have been fixed:

  • The SMB dissector could dereference a NULL pointer. (Bug 4734)
  • J. Oquendo discovered that the ASN.1 BER dissector could overrun the stack.
  • The SMB PIPE dissector could dereference a NULL pointer on some platforms.
  • The SigComp Universal Decompressor Virtual Machine could go into an infinite loop. (Bug 4826)
  • The SigComp Universal Decompressor Virtual Machine could overrun a buffer. (Bug 4837)

The following bugs have been fixed:

  • Cannot open file with File -> Open. (Bug 1791)
  • Application crash when changing real-time option. (Bug 4035)
  • Crash in filter autocompletion. (Bug 4306)
  • The XML dissector doesn’t allow dots (“.”) in tags. (Bug 4405)
  • Live capture stops when using zlib 1.2.5. (Bug 4708)
  • Want to be able to apply decode as to Data Portion or Lan Trace. (Bug 4721)
  • SABP short pdu (packet_per.c). (Bug 4743)
  • Kerberos pre-auth type constants – MS extensions are wrong. (Bug 4752)
  • Check HTTP Content-Length parsing for overflow. (Bug 4758)
  • Wrong variable used for proto_tree_add_text() in ptp dissector. (Bug 4773)
  • Crash when close window frame or gtk file chooser. (Bug 4778)
  • text2pcap expects n delimited text (instead of rn) on win32. (Bug 4780)
  • Wrong decoding for BGP ORF. (Bug 4782)
  • Crash when Ctrl-Backspacing the display filter. (Bug 4797)
  • Acker AFI field incorrect size in PGM dissector. (Bug 4798)
  • Fedora 13: wireshark fails to build (linking problem). (Bug 4815)
  • The NFS FH hash (nfs.fh.hash) incorrectly matches multiple filehandles. (Bug 4839)
  • AES-CTR decoding not working, (dissectors/packet_ipsec.c using gcrypt). (Bug 4838)

Updated Protocol Support

  • ASN.1 BER
  • BGP
  • HTTP
  • IGMP
  • IPsec
  • Kerberos
  • NFS
  • PGM
  • PTP
  • SABP
  • SigComp
  • SMB
  • TCAP
  • XML

Updated Capture File Support

  • PacketLogger.

The following downloads are available:
Wireshark 1.2.9 for Windows (32bit)
Wireshark 1.2.9 for Windows (64 bit)
Wireshark 1.2.9 for Windows (U3 version)
Wireshark 1.2.9 for PortableApps
Wireshark 1.2.9 for Mac OS X (Intel)
Wireshark 1.2.9 for Mac OS X (PPC)
Wireshark 1.2.9 source code for Linux, Solaris, FreeBSD and NetBSD among others

Version number 1.2.9
Release status Final
Operating systems Windows 7, Windows 7 x64, Windows 2000, Linux, BSD, Windows XP, macOS, Solaris, Windows Server 2003, Windows XP x64, Windows Server 2003 x64, Windows Vista, Windows Vista x64, Windows Server 2008
Website Wireshark Foundation
License type GPL